- How many CVEs does Schneider Electric have?
- Schneider Electric has 881 published CVE records since 2011, including 90 in the last two years.
- How many Schneider Electric CVEs are in CISA KEV?
- Yes — 1 of Schneider Electric's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Schneider Electric products have the most CVEs?
- The Schneider Electric products with the most published CVEs are StruxureWare Data Center Expert, Modicon M340, interactive graphical scada system, modicon m580 firmware, Modicon M580.
- What are the most common weakness types in Schneider Electric CVEs?
- Schneider Electric's CVEs most often map to these CWE weakness types: CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-20 (Improper Input Validation), CWE-754 (Improper Check for Unusual or Exceptional Conditions).
- Are there public exploits for Schneider Electric vulnerabilities?
- Yes — 23 of Schneider Electric's CVEs have a known public exploit.
- How many critical Schneider Electric vulnerabilities are there?
- Schneider Electric has 176 critical and 447 high-severity CVEs.
- What is the average severity of Schneider Electric CVEs?
- The average CVSS base score across Schneider Electric's scored CVEs is 7.6.